The domain 5212014.installic.com registered by Whois Privacy Corp. was initially registered in April of 2014 through INTERNET.BS CORP.. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Dublin, Dublin City within Ireland which resides on the Amazon Technologies Inc. network.
Registrant:
Whois Privacy Corp.
Registrar:
INTERNET DOMAIN SERVICE BS CORP
Server location:
Dublin City, Ireland (IE)
Create date:
Monday, April 14, 2014
Expires date:
Friday, April 14, 2017
Updated date:
Friday, April 15, 2016
ASN:
AS16509 AMAZON-02 - Amazon.com, Inc.,US
Scanner detections:
Detections (100% detected)
Scan engine
Details
Detections
Reason Heuristics
PUP.Installer.WARPINSTALLER.F, PUP.Installer.WARPINSTALL.F, PUP.Optional.Installer.F, PUP.Adknowledge.Seekinstall.Installer (M), PUP.Adknowledge.WARPINSTALLER.Installer (M), PUP.Adknowledge.WARPINSTALL.Installer (M), PUP.Adknowledge.WARPINST.Bundler (M), PUP.Adknowledge.SOFTWARE.Bundler (M), PUP.Adknowledge.WARPINST.Installer (M), PUP.Adknowledge.SETUPDOT.Bundler (M)
100.00%
Dr.Web
Trojan.Packed.26508, Trojan.Packed.28561, Program.Unwanted.79, Trojan.iBryte.513
64.29%
AVG
Adware AdPlugin.PA, Adware AdPlugin.AAZ, LionSea Software co.
64.29%
Agnitum Outpost
PUA.Agent, PUA.Downloader, PUA.iBryte
57.14%
Sophos
iBryte Optimum Installer, PUA 'iBryte Optimum Installer'
57.14%
VIPRE Antivirus
Trojan.Win32.Generic, Threat.4798837
57.14%
ESET NOD32
Win32/AdWare.iBryte.AE application, Win32/AdWare.iBryte.BG application, NSIS/TrojanDownloader.Adload.AG trojan, Win32/AdWare.iBryte.AA application
57.14%
Avira AntiVirus
ADWARE/Adware.Gen7, Adware/iBryte.qoemno, TR/Dldr.Adload.117576.3
57.14%
K7 AntiVirus
Unwanted-Program
57.14%
Comodo Security
Application.Win32.iBryte.WRP, TrojWare.Win32.IBryte.S, Application.Win32.iBryte.BYK
57.14%
G Data
Win32.Adware.Ibryte, Win32.Application.PremiumInstaller, Gen:Variant.Adware.Strictor.76822
57.14%
NANO AntiVirus
Trojan.Win32.Badur.cxnrwx, Trojan.Win32.Downware.cvgamb, Trojan.Win32.DownLoader12.dnwisl
57.14%
Zillya! Antivirus
Adware.iBryte.Win32.864, Downloader.Agent.Win32.185140, Adware.iBryte.Win32.7461
57.14%
avast!
Win32:IBryte-DB [PUP], Win32:Adware-gen [Adw], Win32:IBryte-KG [PUP], Win32:IBryte-CY [PUP], Win32:Somoto-N [PUP]
57.14%
Vba32 AntiVirus
AdWare.iBryte, suspected of Trojan.Downloader.gen.h
57.14%
The domain 5212014.installic.com has been seen to resolve to the following 3 IP addresses.
ns1.ibspark.com
April 19, 2016
ec2-23-21-189-120.compute-1.amazonaws.com
September 3, 2014
ec2-54-243-244-249.compute-1.amazonaws.com
September 3, 2014
File downloads found at URLs served by 5212014.installic.com.
The following 142 files have been seen to comunicate with 5212014.installic.com in live environments.
URL:
http://5212014.installic.com/
Google Analytics:
UA-48689684
Related Domains
30 of 618 related domains